In this video, I walk through investigating threats in the Microsoft 365 Defender admin portal. Microsoft Defender combines various defender products like Defender for endpoint, defender for office 365, Defender for Cloud Apps, and Defender for Identity into a single portal. Incidents are tracked and correlated across these various domains to help reduce your time to remediation.
I walk through the various sections of the defender portal to showcase some of the telemetry you get. Best practices are described for analyzing and responding to threats. This is all part of my Defender 101 course which is a playlist on my channel.
#Defender #Microsoft365 #MSP #ThreatHunting #MicrosoftDefender
Негізгі бет Тәжірибелік нұсқаулар және стиль Microsoft Defender-Investigating Threats
Пікірлер: 4